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(54) VIRTUAL WALLET SYSTEM 
(57)Abstract: 

PROBLEM TO BE SOLVED: To obtain a device for storing 
information and money by providing the device with an interface 

Sis? resident wai,et part and a wa,,et part * « 

SOLUTION: A virtual wallet system is provided with a hybrid 
between a wallet 2 kept by an owner close at hand and a wallet 
arranged on a remote place together with a server 4 or the like 
Namely the system includes the interface between the local 
funcfon 2 and the server 4 and interacts with an external world 8 
through the wallet 2 and/or the server 4. Thus the system is 
provided with the locally resident part and the part residing in the 
ItZTtt ^t S& tw ° wallet P arts ca " be communicated with each 
* ^ ' nte ^ Ce 6 " THUS including a payment 

mechanism, a personal identification mechanism, personal 
information, and an electronic artifact and money can be stored 
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gros s-reference to Ren ted Annl»r»in««.. 

The present application claims priority under 35 USC 1 19(e) from US 
Provisional Patent Application No. 60/065,291 entitled "DISTRIBUTED NETWORK 
BASED ELECTRONIC WALLET," filed November 12, 1997 and from US 
Provisional Patent Application No. 60/081,748 entitled "VIRTUAL WALLET 
SYSTEM" filed April 14. 1998. The disclosures of each referenced apphcation is 
hereby incorporated herein by reference. 

Field <n>ff flhc Iimvgmitinnt 

The present invention relates to apparatus, systems and methods for 
information and financial banking. Particular features of the present invention include 
electronic wallets and computer and related electronic apparatus based systems for the 
storage, retrieval and management of personal information including personal 
financial information. An additional feature of the present invention is a system for a 
digitized signature. 
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With the explosion in popularity and utility of the internet and other electronic 
transaction mediums, the need for and dependence upon information in an electronic 
format is ever-increasing. The problem of storing, retrieving and managing all of a 
consumer's electronic data, however, has not yet been satisfactorily analyzed or 
solved. 



Further, the problem is not currently being approached from the consumer's 
standpoint, but from the standpoint of the vendor looking to solve particular vendor 
needs. One form of product that deals with some of the above-stated needs are 
generally called electronic wallets. Typically, current electronic wallets are just an 
afterthought, however, used by vendors to enhance other products. Generally an 
electronic wallet is a software application, on a network or within a browser, that is 
part of a much larger program. Electronic wallets focus primarily upon the payment 
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«P«. of oo^e. F „ exmp , e eleclron . c 

™=H„g „d „ da „ ^ 

10 ^"POircmsoftheireJeeKiuc wallet. 

Further to*™^^. erfgned,,.,^ 

-I «. the eiecu™ ^ ^ ^ to ^ * 

of amem electronic wdlets is driver, ^ ^ D<ma '">' 

^ v ™°'' ra ™tac™isunier, needs. On the 
o*er h»d. . cor^e, ^ 10 . mKgMe „ electronlc ^ ^ 

20 ^ -n.«.".e™i s ,^r„ m e l «, ro » 1 e wlle „ 1 ,„ is , blel()luortii . il) 
e.ectronic d.te th* is chosen _ on ^ ^ 

needs of a particular software vendor. 

Additiona.lv, electronic wallets typically reside either locaJly with the owner 

There are drawbacks to both residences. 

■ Local residence has the advantage of co mp , cte cental by the owner and not 
much resource Mocation rcqu . ed by vinuai ^ issuer Qn ^ h ^ 

be* residence of an e.ectronic wallet exposes the owner to the greatest risk of loss 

Further security, portability and interoperability issues arise whence residence is the 
persona, confute, Networked computers may be hacked into, thus ex P osin g their 
valuable .formation. Also, many home computers are not mobile, thus restricting the 
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o Ws ability to use the e.ectronic wal.et Finally, ,oca. rcsidence in programs such 
as browsers generally restrict compatibility with other applications in an effort to 
restnct the owner from conveniently utilizing competing browsers. Thus, local 
residence has some disadvantages. 

A remote electronic wallet typically resides on a server. This option 
advantageously provides superior information protection, as the server cannot be Jost 
or stolen. Yet. residence on a server inconveniently requires the owner to etfab.ish 
some sort of network connection to access the wallet Further, remotely accessing the 
.nformauon brings about a problem in authenticating the identity of the individual 
requesting access. Passwords and Personal Identification Numbers (PINs) may be 
unhzed, however, to increase the protection of the information. Thus, remote 
residence has some disadvantages. 

Therefore, there exists a need to overcome some or all of the above-stated 
^advantages of current electronic wallets and provide new apparatus, methods and 
1 5 systems for information banking. 
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SmmiEBign rv off th& Invention 

The present invention provides apparatus, methods and systems for 
information and financial banking. Apparatus of the present invention include virtual 
wallets which allow for information and financial banking. Methods and systems of 
the present invention include information and financial banking methods utilizing 
virtual wallets. 

As used herein, financial banking refers to the banking, investment and 
securities services tmdi.ionally offered by the financial services industry. Information 
bankmg or Information-based banking is an extension of the financial metaphor where 
precious mformation is stored in a secure place on behalf of the customer. In the 
present invention, information is treated in a similar manner as currency. Although 
"mformation and value" are better analogs as are "data and currency" to each other ' 
respectively. Examples of vaulted information can include insurance policies legal 
documents, medical records, in addition to financial and credit histories. 

Under the present invention, a consumer's personal information can be viewed 
through the use of both theoretical and practical devices which characterize the 
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storage ^ value ^ of „ currency ,. For ^ ^ ^ & ^ ^ 

currency can be used as a metaphor for storing and protecting infonnation> ^ ^ 
mvestment of currency can be used as a metaphor for generating value from the 
tnmsactiona. use of that information. Thus, the present invention provides an 
-dividual with apparatus, systems and methods ,o vault and invest information 

An embodiment of the present invention is a virtual wallet. Virtual wallets 
may be thought of as an electronic version of the physical metaphor, the conventional 
wallet In one aspect, a virtua. wallet of the present invention comprises software 
possibly contained in special hardware, that acts as a container, for an owner/user'of 
the vtrtual wane, for at least one of the following: payment mechanisms; identity 
authentic^onmechamsm*^^^ 

wallet of the present invention may also be thought of as comprising an electronic 
system for the secure storage, retrieval and management of personal information 

As noted above, a virtual wallet of the present invention acts as a container for 
electron* objects, including but not limited to payment mechanisms, identity 
authentication mechanisms, personal information, electronic artifacts, and the like of 
the owner/user of the walle, These e.ectronic objects are preferably not limited to 
mformation from a single source, for example a financial services institution Instead, 
a virtual waile, of the present invention may be utilized to hold information from a 
vancty of sources, including multiple financial institutions, and personal information 
from a variety of sources in order to provide a user with more useful virtual wallet 
Many users of conventional wallets use their wallet to contain multiple bank cards 
cred.t cards, personal information, notes, membership cards and the like from a ' 
variety of sources. In this regard, a virtual wallet of the present invention is preferably 
smular to a conventional wallet in terms of the types and kind of information 
contained in each wallet, similar to a conventional wallet 

Ac - rd ^to ft epresentinvention,avirtualwalletma^ 
of the following features. A virtual wallet of the present invention may allow an 
owner to personalize its contents, enabling i, to store any information the owner likes 
.n a format selected by the owner. Also, an owner of the virtual wallet is able to 
access its contents where ever the owner may be, which a.ong with the personalized 
format, maximizes the wallet's convenience. Further, a virtual wallet of the present 
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invention may allow an owner to link information stored in the wallet to other 
futons, which leverages the utility of the stored information and makes the virtual 
wallet mteroperable with other applications. Additionally, a virtual wallet of the 
present invention may allow an owner to control access to and distribution of the 
information in the wallet, thereby gi ving the owner security and total control over 
his/her personal information. The virtual wallet systems of the present invention may 
advantageously feature the offering of rewards to a virtual walla owner for 
dtstnbuting their information. A further feature of a virtual wallet of the present 
invention is that the wallet may comprise a mechanism or mechanisms that eliminate 
the nsk of loss of the information in the wal,et by remotely storing and/or disabling 
the wallet contents. In this way, a virtual wallet of the present invention may 
advantageously comprise a trusted place to keep information and valuable financial 
items, as well as a convenient way to move around information. 

Payment mechanisms stored in the virtual wallet may comprise bank account 
mfonnation, credit account information, e.ectronk currency, electronic checks and 
deb.t cards, for example. Identity authentication mechanisms stored in the virtual 
wallet include personal identification information and authentication information 
Personal identification information may comprise, for example, name, home address 
work address, home phone, work phone, emergency contact information, and 
biometric information. Authentication information may comprise objects such as 
ceruficates, accesskeys and biometric information. Personal information and artifacts 
of the owner that are stored in the virtual wallet may comprise, for example the 
personal identification information as stated above, other persona, phone numbers and 
addresses, appointments and reminders, personal preferences and interests, loyalty 
credos, coupons, pictures, tokens and tickets. The above objects are jus, examples of 
some of the exhaustive capabilities of the virtual wallet. After reading this 
specification other examples will be obvious to those skilled in the art. 

An advantage of a virtual wallet of the present invention is that the virtual 
wallet may include information from a variety of source, Further the information 
from different sources may interact. For example, in a virtual wallet of the present 
invention which includes a frequent flyer type credit card the wallet owner would be 
able to manage and track both credit card information and the added value function of 
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managing and tracking frequent flyer miles. In addition, an eciec.ic wallet such as a 
vutual wallet of the present invention, may allow consumers to add items that are not 
affihated with the wallet issuer. Allowing any item to be added to the wallet is 
advantageous to the consumer and other application vendors. 

Another advantage of a virtual wallet of the present invention is that the virtual 
wallet may advantageously be a trusted place to keep information and valuable 
financial items. Currently there are many founded and unfounded consumer fears 
regarding privacy and the safety of electronic transactions. If given a choice, it seems 
log.ca. that consumers would rather store their sensitive information with someone 
that already has a reputation for trust and consumer advocacy than a suspicious third 
party. In a world where information is increasingly gathered on consumers in secret, 
marketed, and sold, an explicit policy of privacy protection and safety is a powerful 
mducement to hold a virtual waHet from a financial institution, Further, there is not 
only value in having consumer information, but value in moving it around as well. 
Also like money, information can be invested to provide - increasing returns. 
Informationmust also be protected, which give rise to the concepts of information 
vaults and safety deposit boxes. The central issue of privacy is turned into an 
opportunity, and is at the core of information banking. 

A further advantage of a virtual wallet of the present invention is that the 
virtual wallet provides a convenient way to move information around. As explained 
in more detail in our copending application entitled "DISTRIBUTED NETWORK 
BASED ELECTRONIC WALLET* (Methods and Systems for Information Banking), 
filed the same day as the present application and assigned serial number, 

the disclosure of which being hereby incorporated herein by 

reference, a simple service of enormous convenience is to help consumers fill out 
forms from their personal data that resides in the information bank via their wallet. 
Whether a loan application, a site registration, a job application, once the information 
is known, there is no reason that a consumer would have to type it in again, even 
though it might be for different reasons, or in a different order. A further feature is 
that the owner of a virtual wallet may be able to have multiple answers for the same 
question, depending on the persona that they wish to represent at the time (social vs. 
work, for example). c? 



6 



10 



15 



20 



25 



30 



( 2 6 } «rM¥l 1 -2 32 348 

A further advantage of a virtual wallet of the present invention is that the 
vxrtual wallet provides for selective ioss, theft, and disaster recoverability. Many of 
the current wallet designs have deficiencies when the wallet is lost, stolen or 
destroyed by disaster. It would be advantageous for a consumer to know that given 
one of these unfortunate mishaps, their life is not ruined. In an embodiment of a 
system of the present invention a new virtual wallet may be issued with no loss or 
corrupuon of data. Should the wallet be stolen, the thief will have little opportunity to 
make use of the information, and the wallet keys can be disabled remotely without 
affecting the consumers account status or the items in the wallet. 

Another further advantage of a virtual wallet of the present invention is that 
the virtual wallet may allow for nomadic access. Current wallet designs confine one 
not only to the machine upon which they received their wallet items (notably 
certificates), but to the particular browser that obtained them. This makes it very 
inconvenient to a consumer if they acquire a SET certificate at home and then wish to 
useitatwork. The present invention provides a solution is nomadic and allows the 
wallet to be used wherever the consumer happens to be. 

A further advantage of a virtual wallet of the present invention is that the 
virtual wallet may be a shoppmg aid. One result of having consumer information is 
the ability to infer what they are interested in. The virtual wallet system of the present 
mvention may allow the wallet issuer the opportunity to become a trusted electronic 
broker that will help consumers find what they want to buy. A further consequence is 
the ability to also become the consumer's electronic valet and filter out unwanted 
spam by knowing what they are not interested in. By recognizing that payment is 
only a part of commerce, and addressing other parts of commerce a virtual wallet of 
the present invention provides additional advantages to both a consumer and a wallet 



issuer. 



A still further advantage of a virtual wallet of the present invention is that the 
virtual wallet may be an information organizer. In this regard, the virtual wallet of the 
present invention provides a convenient and useful way to manage and organize 
personal information. Further, the personal information systems of tfie virtual wallet 
of the present invention may advantageously form part of the protected information 



bank. 
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Another still further advantage of a virtual wallet of the present invention is 
that the virtual wallet may generate financial and non-financial rewards. In an 
embodiment of the present invention, part of a wallet package could be a rewards 
feature based upon several possible strategies. The first strategy makes discounts and 
5 special offers available to holders of the wallets. This is a familiar technique to 
financial service providers and is not a radical departure from what is already done 
today with cards and membership programs. Typically, however, the discounts and 
offers are of a broadcast nature and may not necessarily match a given consumers real 
interests. Hence, some cost of delivering the discount and offer information is wasted 
1 0 on consumers that are not interested. 

A bolder strategy, made possible by the virtual wallet systems of the present 
invention, encourages consumers to make their demographics and interests available 
by pairing their information account (the sturfin their wallet) with a financial account. 
Initially, consumers are instructed to specify those things they are interested in, and an 
electronic shopping agent will report back to them on what it finds. The consumer 
interests are then categorized into profiles, less their identities, and put into a database. 
Instead of selling profiled mailing lists, which is perceived in a negative light by 
consumers, marketers would pay to have an electronic advertisement delivered to 
virtual wallet users of a given profile. 

The information bank behind the wallet preserves the consumer's identity, 
while making valuable information available to marketers. These types of marketing 
responses are perceived as less of an intrusion to privacy since the consumer has 
indicated their interest by submitting a search for an hem. 

The value proposition of the wallet is that a portion of the money received 
from the marketers for delivery is passed on to the consumer into their associated 
financial account. In effect, the marketers are paying a consumer for their time to 
consider an offer. Because the marketing messages arc screened through the 
consumer's individual profiles, the consumer will not be receiving anything that is 
grossly dissonant from their stated interests. Marketers will be able to get an 
aggregate count of how many individuals match the requested profile and a price 
quotation prior to an investment in delivering the ad. This allows them to refine their 
profile definition and tailor their marketing messages prior to large outlays of cash. 
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to enable them t0 move meir infomation ^ ^ rf ^ ^ ^ ^ ^ • 

information investment' area where the information is made available to profit 
searches. 



A variant of this concept recompenses the consumers with non-monetary 
rewards such as loyalty credits. Loyalty credits can legitimate* have a higher 
perceived va,ue than a cash e q u 1Val en, Currently, loyalty programs of high demand 
(e.g. Sequent flyer miles) are typically limited to large companies, and the rewards are 
10 not very hquid. In addition to receiving loyalty credits in return for viewing 
marketing messages, a virtual wallet provider could also offer a brokerage and 
exchange service to "swap" various loyalty credits for others. Tnis js ^ ^ 
increasing the velocity of exchange philosophy and has an ovenul beneficial impact 
on the aggregate of loyalty programs. Suppliers benefit because they can relieve their 
15 debtfaster. The "loyalty" objective is still met since consumers wil, join loya.ty 
programs for products they intend to buy frequently anyway. The overall value 
becomes higher to a consumer because their flexibility of what they can exchange the 
credtts for has increased, and the potential loss of earned credits due to expiration 
dates is reduced. Another clear wi n . win for ^ ^ ^ ^ 

mechanism. 

Further details relating to the present invention are set forth in the appended 
figures and the following description. 



25 



Brief Dcsi-ripiHA n of tih e Tt«.»,„ r , 

Figure 1 "aschematicrepresentationofanembodimentofavirtual wallet 

system of the present invention. 

Figured is another schematic representation of an embodiment of a virtual 
wallet system of the present invention. 

Figure 3 is a schematic representation of an embodiment of an electronic 
30 wallet architecture according to the present invention. 

Figure 4 is another schematic representation of an embodiment of an 
electronic wallet architecture according to the present invention. 
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Figure 5 is a flowchart of an intermediated transaction function of the present 

invention. *^=>cni 



30 



invention. 



invention. 



invention. 



Figure 6 is a flowchart of a wa!.et open for payment function of the present 

>n. 

Figure 7 is a flowchart of a publish public key function of the present 

5n. 

Figure 8 is a flowchart of a purchase with coupons function of the present 



Fig ^ 9isaflo ^°^^e«purcl^ea„dusefunctionof,hep re sem 

10 invention. 

Figure 10 is a schematic diagram of the content* n f an « . . 
_ 8 lu,me contents of an exampJe virtual wallet 

of the present invention. 



invention. 



Figure 11 h««taB«rftt««^vi rt u-^^ oftopi|-1- 



Figure ^isaschematicrepresentationof JAVA API's which may be utilized 
in the example virtual wallet system of the present invention. 

JPetaHed lUeacrimtfain itfthe h wn H«n 

The present invention provides apparatus, systems and methods that allow an 
nulmdual to manage their financial and personal information. An embodiment of the 
presentinventionUreferredtohereinasavirtualwallet. The present invention 
mc.udes virtual wallets, virtual wallet systems and methods utilizing virtual wallets 

Embodiments and features of the present invention are described in detail with 
reference to the appended Figures. 

Figure 1 depicts a possible embodiment of the present invention. Referring to 
Figure 1 according to the present invention a virtual wallet may comprise a hybrid 
between a wallet that resides locaUy with the owner, 2 and a waUet that resides 
remotely, such as with a server, 4. A virtual wallet system further inc.udes an 
mterface, 6 between the local function, 2 and the server, 4. The virtua. wallet system 
may mteract with the outside world. 8 through local wallet 2 and/or-,he server 4 The 
hybnd virtual wallet combines the portability, owner contro. and minimized issuer 
resource aspects of a .oca. wa.. e t with the security and storage capabi.ity of a remote 
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waUet. Thus, the hybrid virtual wallet advantageously optimizes the advantages of 
each type of residence, ft, the following discussion, the local residence or portion of 
the wallet may be referred to by these names or as a "cHenf. The remote portion of 
the wallet may be referred to by this name or as a "server". 
5 The local residence of the wallet may comprise, for example, the owner's 

personal computer, smart card, or other similar device that enables the wallet to be 
ut.hzed off-line, ry^.^^^^^^^***,^ 3 
comprises data and information determined by the walle, owner to be important, while 
the entire wallet is contained remotely. For example, the Jocal aspect of the virtual 
10 wallet may comprise stored value purses, important persona, and authentication 

mformatton, and account information enabling the local aspect of the virtual wallet to 
emulate any of the functionality contained within the entire wallet The owner 
advantageously is able to define and have access to the most important aspects of the 
wallet in a convenient package that can be remotely utilized. Preferably the local 
15 aspect of the wallet is mirrored on the remote wallet or server, thus protecting the 
•nformation in case the card has to be replaced. Additionally, the local aspect of the 
wallet comprises a certificate or other similar authentication instrument that allows the 
owner to remotely gain access to the entire virtual wallet on the server. Thus the 
owner can still have access to all of the wallet functionality at sites where theloca. 
20 aspect of the wallet can be linked to the server. 

The remote aspect of the virtaal wallet advantageously provides security for 
all of the information i„ the wallet. The server also provides greater storage capacity 
for .nformation compared to a smart card or personal computer, for example The 
contents 5, of the remote aspect of the virtual wallet comprises the entire wallet 
25 whrch may be in part mirrored in a local aspect of the virtual wallet. The remote 
aspect of the virtual wallet, however, may not completely mirror cash and cash-like 
objects m the local aspect of the walle, due to off-line transactions. The present 
invention, however, updates the remote aspect of the virtual wallet with the latest 
.nformation from the loca. aspect of the virtual wallet when the local wallet is on-line 
30 Add.t.onally, according to an advantageous feature of the present invention the 
remote aspect of the virtual wallet provides privacy protection in transactions by 
replacmg the owner's identity and address, for example, with secret information 
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^ ° f "» i-vide, seed* „d *, rag e 

11.US, Ite embodimcn. of « .tmrf ^ of lhe 
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off-,.,* „ Wte „ mott ^ of , he walfci pTOUet ^ ^ 

protection. 

Figure 2 also provides a schematic depiction of a hybrid virtual wallet 
embodiment of the present invention and a method for using same. As shown in 
Figure 2, a virtual wallet system may comprise a persona, storage device 12 an 
institutional server 14 and an interface device 16. The personal storage device ,2 and 
institutional server may each interact with the outside world, 1 8. 

nie personal storage device may comprise a smart card, personal digital 
assistant (PDA) or a memory chip device. The personal storage device may a.so 
comprise a computer's hard drive or other computer based storage. The preferred 
embodiment of a personal storage device, whether handheld and easily transportable 
or a portion of a computer's hard drive, will depend on the preferences of the user of 
the wallet. 

The personal storage device may include, but is not limited to, one or more of 
the following types of data: private keys; pub.ic keys; account numbers; electronic 
currency (e-curre„cy); coupons; tokens; tickets; loyalty credits and the like The 
functions of the personal storage device may inclu de one or more of the fbllowing- 
authenticating; digital signing; or paying. These data types and functions are 
described in more detail in the following sections. When the wallet is on a smart card 
the consumer becomes truly "nomadic" - phagin their card wherever they go and ' 
have their wallet (and bookmarks,) available a., the time. However, there wil, need to 
be capabilities built into the clients (and possibly serve.) that permit this roaming 
feature. As the card becomes increasingly important to the consumer, means to 
replace lost or stolen cards must be deve.oped just like replacement processes for 
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credit cards, licenses, and other physical ID cards. This will be part of the service 
offered by the truly useful, trusted wallet provider 

The interface device need not include data but will generally include at least 
one of the following functions: user interface interacting; communicating; or public 
encryption. As will be understood from the foregoing discussion, where the personal 
storage device comprises a computer's hard disk and the interface device comprises 
the same computer, the interface device may include the data and functions of the 
personal storage device. 

The institutional server may include the same data as the personal storage 
device and may further include one or more of the following types of data: 
certificates; names; addresses; history logs and the like. The institutional server 
preferably acts as backup means for the personal storage device and therefore may 
include back-up copies of the data contained on the personal storage device. The 
institutional server may include one or more of the following functions: 
authenticating; digital signing; paying; loeging; reporting ^ ctmamaiaa ^ ^ 
functions and the foregoing data types are described in more detail in the following 



sections. 



As shown in Figure 2 by the large arrow, personal storage device 12, interface 
device 16 and institutional server 14 may communicate via secure interface 
interactions 13. In this regard, the interfile device provides an interface between the 
personal storage device 12 and the institutional server 14. Personal storage device 1 2 
may communicate with outside world 18 for purpose of point of sale transactions 15. 
These transactions include transactions involving the transfer of currency (e.g. a 
purchase) and also include transactions involving the transfer of personal infonnation 
The mstitutional server portion of the virtual wallet 14 may communicate with outside 
world 18 via intermediated internet transactions 17. These transactions may be 
handled in a manner similar to current internet based transactions and involve both the 
tnmsfer of financial information (financial banking) or personal information 
(infonnation banking). 

From a technology point of view, virtual wallets include software programs 
that will reside on a smartcard, client PC/PDA/STB and/or on a server. These 
programs implement at least four components: 
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consumer. 'ms aata will be unique to each 



Figure 3 depicts a possible architecture for a virtual wallet system of the 
present mvention 271. As piously noted, the concept of an electronic wallet means 
many thmgs to many people. One version could be a pocket sized computer with a 
snap shot-size color screen that will be used in place of many essentials that 
consumers carry around with them today such as money, keys, identification credit 
cards, tickets, as well as items that provide the consumer with mobile information and 
communications such as a watch, newspapers, calculator, portab.e telephone, pager 
etc. In this embodiment, the wallet 271 is a physical thing that i S carried in the 
25 pocket. Because of its electronic nature, it can add functionality that the conventional 
wallet can not perform. However, consumer concerns about this type of device make 
•t impractical. Although it is technically possible to back up the contents of the 
electron* device, the reality is that consumers would probably be at least as 
-«P-sib.ewi^ tQ 
30 the extent mat such a wallet interfaces with providers of the wallet or others, there is a 
secunty concern in that information about the consumer could be used by others to 
make a profit and not let the consumer know about it. Thus, extension of the physical 
wallet, especially those offered by third party software or hardware vendors make 
rapid adoption unlikely. 



At the other end of the spectrum is the totally virtual wallet. It is not a 
physical device, but a set of applications on a server somewhere. The major 
dtsadvantage of this is that all transacUons have to be "on-line" or connected 
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to a server. This could result in more expensive an^r u« 

wcwpowive and/or less convenient use. Another 

issue is security. 

A hybrid approach, and that preferred in accordance with the system of the 
mvention, is to put some data and appUcations on a physical device and some on a 
serve, A smart card is ideally suited for this type of appHcation since it makes the 
most sense to put the scanty and access functions on the card, and to put the volume 
of data and applications on the server. Further, those transactions that would be too 
expensive to have on-line, such as small amounts of electronic cash transactions, also 
makes sense to have on a such a smart-card. Thus, as shown in Figure 3 the 
electronic wallet 271 in one embodiment is made up of an e-cash app lica tions 
contamer 273. an electronic cash application manager 275, a use or authentication 
module 277, a key to application manager 28 1 . a key ring applications container 283 
and external applications interoperability API (applications program interface) 279, ' 
and a user application organizer and manager 285. 

The e-cash applications container 273, as the name implies, is storage for e- 
cash applications. In order to gain critical mass, more than one type of e^h is 
supported. The storage in container 273 is sufficiently generic to only record each of 
.ts members as being some form of e-cash and the actual "object" inthe container 273 
« a "connector" to the real e-cash application. The programming provides that the e- 
cash application can be located and started. The e-cash manager 275 is software that 
provdes how to add e-cash applications and use them in a generic manner. The user 
authentication module 277 can be replaceable to allow for growth in the security and 
authentication technologies. Prior to implementation of smart cards, it could be 
software that asks for an account number and personal identification number, but with 
current technology, it can be implemented using the card and a server, using 
authentication technology implemented today. For furore purposes, alternative 
security and authentication technologies might use biometrics, etc. 

The key to application manager 28 1 serves to manage non-cash applications in 
the wallet such as credit, debit, e-checks, identification, facilities access and other 
apphcations. This is the software that: maintains the contents of tiurkey ring 
application container 283. The key-ring container 283 holds the connectors to server 
apol.cat.ons. The contents are managed and maintained by the key to application 
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^7 PreVi ° US,ydeSCribed - ^--artcard.beco.e^corn.nonly 
available, it is believed that they will not be sufficiently large to actually ho,d the 
aprons. Instead, they will hold Sectors" to the applications that reside on a 
serve. The most import aspect of a "connector" is a key or certificate that helps 
idennfy anauthori^ user of the application. The "key ring" then is a container of 
key, They are not like the "real" keys, however, as further iH ustra ted hy Figure 4 
hereof. 

More specifically, Figure 4 illustrates a wallet and application access scheme 
301 In tms figure, the concept of an access device provider, wallet issuer and 
application provider have all been separated. As illustrated in Figure 4, a consumer 
can use an access device 303 to access their information 305. The access device 303 
has been provided at point of sale, or point of contact by some party. Tne wallet then 
uses the access device 303 and the access device server 307 connection to the network 
to contact the wallet issuer server 309. The consumer then identifies the appropriate 
application by their own description. The description is associated to an app.icatibn 
key proxy 3 1 1 that is sent to the application provider server 3 13. 

In the scheme 301 described, the consumer can access their information via a 
device 303 provided at point of sale, or point of contact by some party. Since this 
party w,ll want some presence other than the device 303. some "real estate" is set 
aside in the ,»e S entation imerface for their content. Thewallet271 uses the device 
303 and the devices server 307 connection to the network 301 to contact the wallet 
. ssuer server 309. The consumer, as noted previously, identifies the appropriate 
apphcation by their own description. The description is associated to an application 
key proxy 311 that is sent to an issuer server 309. The issuer server 309 authenticates 
the user and then looks up the location of the application and its real and actual key to 
be used for access to it. It then connects the consumer to the application at the 
apphcation server 3 1 3 and serves as a secure conduit. 

As may be appreciated, proxies are used instead of actual keys in case the card 
•s lost or stolen. In this marker, the coordination with many unaffiliated organizations 
to ,ssue new keys is eliminated . The issuer simply issues a new card with new 
proxies on the card. 
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A number of different features of the present invention, as disclosed in the 
appended Figures, will now bediscussed. ,n all of the flowcharts, each component of 
•he system is identified a,ong the top horizontal axis, and the description of each step 
» -dentified along the left vertical axis. Further, the middle of the chart comprises 
arrows, and sometimes wording, representing interaction among the svstern 
components and the flow of information. A double-headed arrow represents a two 

^ fl ° W ° f dial0eUe » typic8lI > wi * ™* detailed dialogue (not shown) occurring at 
a lower level. 6 

The steps set forth in the flowcharts are performed by a user of the virtual 
wallet or implemented in computer software residing on the personal storage device, 
the interface or the institutional server. 
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Inftemniifidlterted Tiraimsaction 

Referring to Fig. 5, one feature of the present invention utilizes a wallet server 
to supervise a transaction between the virtual wallet and a merchant. For example the 
wallet owner may be shopping at a merchant location. The wallet owner decides to 
purchase an item utilizing the virtual wallet. Utilizing the virtual wallet, the owner 
sends a purchase request to the merchant. A merchant device, such as a merchant 
server, receives the purchase request, verifies the item that the wallet owner wishes to 
purchase and sends a payment request to the wallet owner through the wallet server 
The requests may be sent in the Multimedia Internet Mail Extensions (MIME) format 
for example. The wallet server then forwards the request in the form of an invoice to ' 
the wallet interface, such as a browser or other similar application. The invoice is a 
package of information comprising, for example, the purchase order information and 
the accepted payment mechanisms. Additionally, if mis is a„ internet me 
mvoice may also contain the URL to the acquirer server, for example. Upon receiving 
the mvo.ce, the wallet owner views the invoice, selects the method of payment, and 
s.gns the invoice receipt. The signed receipt and the selected payment mechanism go 
back to the wallet server, which intermediates the payment transaction. For example 
the wallet server may utilize the Secure Electronic Transaction (SET) protocol, or any 
other s,m.lar transaction protocol, to exchange the payment information such as the 
wallet owner's account number, the amount of the payment, and the authorizations 
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Publish Pnnblfc Key 

the 10 Fi8Un! ? * m ° Xhet adVantage ° US feanW5 ° f thc >"« mention is 

the ah,,.* to generate, publish and index a public^rivate key pai, An advantage of a 

pubUc/pnvate key pair, The public key may be published to the server of the waaet 
wh.ethepnvatekeyre.naiaslocal. This feature helps preserve non-repudiation as ' 
the pri vate key is solely in possession of the consume, In a preferred embodiment, 
wherem the local residence (client) is a smart cart, the private key never leaves the 
smart card. 



Thrs publish public key feature allows a party relying on a signed document to 
go sought to the issuer of a key ,o check it's validity, as opposed to having to check a 
th-rd party's certificate revocation list (CRL). In this case, the wal.et owner as*s the 
wallet to generate anewkey pair. Alternative.y, this may also be a piece of software 
A«» requested. But, in either case there may be mu,ti P ,e active key pain, Th echip 
dev.ce. after it's done the processing, returns the public key and requests from the 
wallet server an index to associate with i, The wallet server forwards that public key 
and the index request to the public key directory. This assumes mat mere may be two 
Afferent entities - the wallet server and the public key directory, but they may be 
under the same legal entity. The public key directory publishes the key and 
according to a tmique feature of the present invention, returns the index to this key to 
the wallet server. The wallet server, in turn, returns a copy to me chip device The 
ch,p device then acknowledges the publishing of the key and the receipt of the index 
to the wallet owner. 

Since the index may be some incomprehensible set of numbers, the present 
tnvention advantageously allows the wa.let owner to associate a "friendly name" or 
nickname with the index. Since the wal.et owner may have multiple signing keys, for 
Afferent personas or different relationships, it is important for the owner to be able to 
create a memorable name for each key index. Finally, the chip device securely stores 
the index with the key pair for future use. 
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Sign Digital Document 

In operation a signature requester, such as a restaurant, wants the walle, owner 
to s.gn a document, such as a receipt. The requester initiates the diaiogue and sends a 
document^ walle, The waiiet designates the document a, a signature document 
for^onbythesoftware. Th. wallet server sends the signature document to fc 
wallet mterface when it comes on line, thereby supporting both synchronous and 
asynchronous dialogs. The wallet interface displays the signature document and 
abstracttothewalletownerforsigning. The owner then picks one of their signature 
key mcknames, or in other words the persona that they are signing with, and they sign 
the document. This feature of the present invention advantageously manages multiple 
signature keys. 
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Purchase With Gompoma 

This feature of the present invention, referring to Figure 8, advantageously 
provules a coupon manager system that collects coupons for the wallet owner and 
compares and selects appropriate coupons when the wallet owner is presented with a 
payment request invoice. This system beneficially allows the owner, at one time to 
select and collectively redeem all coupons that apply to a particular transaction 

In this case, the wallet owner shops at a merchant and after indicating items to 
purchase, the merchant server sends a payment request and a list of accepted payment 
vehicles to the wallet owner. The payment request also comprises an invoice, and an 
mvo.ee object knows the items and product numbers contained in the invoice The 
mvoice object delivers that list to the coupon manager, which analyzes the invoice and 
compares it to a coupon list that contains the coupons held by the wallet owner After 
findmg matches, the coupon manager prepares a list of applicable coupons and 
presents this list to the wallet owner. The list is preferabiy presented all at one but 
each applicable coupon may alternatively be presented one at a titne. The owner 
indicates which coupons to use, and the coupon manager sends the list of indicated 
coupons back to the merchant server as a discount request. Based on the coupons 
received, the merchant updates the invoice and the merchant server sends an update 
payment request back to the owner. The wallet owner selects a payment mechanism 
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and signs the payment request, which is forwarded to the merchant Finally the 
merchant authorizes the payment via conventional means, and notifies the oivner of 
the result of the authorization. 

Additionally, the coupon manager may suggest aIternative purchases ^ ^ 
owner based on having coupons for items that are substitutes or equivalents to the 
..ems listed on the invoice. Further, the merchant may provide a coupon presentment 
o P t,on to the owner by offering coupons for equivalent or substitute items, or even the 
dually indicated items. In either case, the coupon manager presents these options to 
the owner for approval. 

Ticketf Fnnrchase and Use 

Referring to Figure 9, yet another feature of the present invention allows the 
wallet owner to purchase, store and use tickets, tokens or other similar transferable 
items of value. The space between lines in the chart represent the passage of time In 
this case, for example, the owner interacts with a theater to purchase a ticket to a 

show. Themeaterserverrequestspaymentfromtheowner.whoauthorizesthe 
payment. Once the theater verifies the payment, the theater server sends the ticket to 
thewalletserver.whichstorestheticketforlateruse. The ticket comprises a 
migratory object, which is able to be transferred from one location to another When 
the owner decides that they want the ticket stored locally, the owner makes a request 
to the wallet server for local storage of the ticket. The ticket object is then transferred 
to the secure chip device, such as in a smart card. Upon arriving at the theater the 
theater server requests a ticket and the owner plugs the chip device into the wallet 
interface to access the ticket, or alternatively, into a theater interface. The owner is 
given access to the theater once the ticket is then transferred to the theater server after 
a mutual authentication process. 

Additional aspects of the present invention, its features, advantages and 
operation are illustrated in the following example. 
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Examp le 

An example of an embodiment of a virtual wallet, and its use in commerce are 
described below and with reference to Figures 1 0 and 1 1 

The hybrid wallet is a combination of a smart card physica.ly in possession of 
the user and a server based waUet. The wallet then has three distinct appHcations that 
allow ,t function both off-line and on-line for appropriate tasks. 

Thefirstareawouldbeastoredvalueareaorpurse. This area would be able 
to d 1S pense and track electronic cash off-line and, would be re-loadable on-line 

The second area would essentially be equivalent to the magnetic strip on 
current cards, but allow the physical card to become a proxy for any of the cards 
contained in the wallet. This would allow purchases via the existing channel* when 
the user is in physical stores. The account information would be mirrored on the 
server in case the card had to be replaced. 

The third area represents the "rest" of the electronic wallet and is simply a 
entitlement that allows the holder to gain access to the wallet on the server Such 
entitlements could be the form of crytograms, certificates, signed indica and the like 
Tms provides the ability to have many wallet items when the actual resources of the 
cards are quite limited. Additionally, communication occurs between high-speed 
servers at higher bandwidths than would normally occur between a consume/, 
machine and a server, thus improving the overall performance. 

Furthermore, should the card be lost, stolen, or destroyed, a new entitlement is 
easily reissued while the old one revoked. To illustrate, assume a worst case scenario 
that each wallet item requires its own certificate from each wallet item (application) 
vendor. If all of those entitlements were stored on a smart card, each vendor would 
have to be contacted to revoke and re-issue in the event of a card mishap. Storing the 
entitlements on the server avoids this complex problem and replaces it with the simple 
task of revoking and reissuing the one certificate that the wallet issuer has control 
over, the certificate to the network wallet. To the user of the wallet, where the 
contents actually reside may not be apparent. The virtual wallet appears to have all of 
30 its contents together. 

The actual physical distribution of the contents, however, will be determined 
by what must be available off-line, and what can be resident on a server. The Figures 
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1 0 and 1 1 show some functionality on a smart card devoted to off-Hne (not on the 
Internet) transactions, and a sing,e certificate to access the rest of the virtual waUet on 
the network. 

Figure •Oprovidesablockdiagr^r^resentingthecomentsofavirtual 
wane, ^show.i„Fi gU reI0the O wn e rofavi I tua.wa,,etma y usethewaUettoho I d 
(contatn) credit and debit cards, and related financia, information. This financial 
currency includes in the present examp,e, VISA® cash ,22, VISA® certificates 124 
VISA® credit card 126, MasterCard® credit card 128. Mondex credit ,30, Mondex ' 
certificates 132, Diners Club credit card ,34, MasterCard® SET certificate ,36 
10 V 1 SA® S ETcerti fi cate,38,Din e rsSETcer ti ficate,40. The financial currency may 
further include credits from selected vendor for example, Citi Shopping Network 
Credns ,42 and Gasoline company credits ,44. In addition, wallet 120 may mclude 
reward program information, such as frequent flyer miles. J 46. 

In addition to financial currency, the virtual wallet. 120 includes "information" 
15 currency relevant to the owner. Examples of information currency include a phone 
book 148. acaJendar and appointment book ,50. identity information ,52. to do Hst 
1 54, calling cards ,56, persona, information 158, personal interests 160 and a network 
wallet identity certificate 1 62. 

Figure 1 1 depicts the physical embodiment of the virtual wallet ,20 of the 
20 present example. As shown in Figure 1 ,, the virtual wallet is a hybrid between a 
smart card 1 70 and a wallet server ,72. Smart card 1 70 includes VISA® cash 122 

V,SA®SETcer,ifica.e,38,VISA«)c e rtificates,24,VISA®creditcardl26 
Mondex credit ,30, Mondex certificates 1 32 and network waHet identity certificate 
162. The wallet server 172 inCudes MasterCard® credit card ,28, Diners Club credit 

•5 card 134, MasterCard® SET certificate 136. Diners SET certificate ,40, phonebook 
148, a calendar and appointment book 150, identity information 152. to do list 154 
calhng cards ,56. persona, information 158. Citi Shopping Network Credits 142 ' 
gasoline company credits ,44, frequent flyer miles, 146 and personal interests ,60 
As deputed schematically in Figure 1 1. the owner of virtual waUet 120 may 

0 uuhze the smart card portion. 170 to complete electronic cash transactions 180 for 
example to pay a taxi fare ,82. Smart card , 70 may a,so be utilized in credit clrd 
transactions. ,84 and ,86. Smart card ,70 is also a proxy ,88 to the server 1 72 or 
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network portion of the wallet through the internet, 190. A pass through interface 
allows the user to select an item (information or financial currency) from applications 
on the wallet server as if they were on the smart card. Since the applications and 
currency reside on the server, the number is not constrained by the size of the smart 
card's memory, and the card is easily replaced in the event of a mishap. 

Additionally functionality is provided by the wallet server 172 portion of the 
virtual wallet 120. The wallet server, or the smart card through an interface to the 
wallet server, may communicate through the internet to merchant servers 192 for the 
purchase of goods or financial services, or the exchange of information. 

Features of virtual wallet 120 may be implemented utilizing a Java Wallet 
Model and the Java Electronic Commerce Framework (JECF). The JECF is a set of 
Java API's for commerce. The JECF defines objects for commerce messages and 
operations. A representative schematic is provided in Figure 12. 

As shown in Figure 12, the JECF includes an operations registry, 200; 
protocol registry 202; user interface (UI) registry, 204; instrument registry 206; and 
instrument instances; 208.. The operations registry supports operations for example 
adding or subtracting value from a card. The protocol registry allows the framework 
to include protocols, like SET, that effects operations like payment authorization for a 
credit card. The instrument registry supports financial instruments such as stored 
values cards or credit cards that use an underlying protocol for communication. An 
instrument may choose among the protocols that support it. The UI registry allows 
the framework to switch between different user interfaces to control the underlying 
base set of operations. There is also an encompassing security model for 
communication between objects. 

The flow of an instruction within JECF is, by way of example, as follows. A 
java commerce message (JCM) enters the JECF. The JECF looks up and instantiates 
operations (downloading components if necessary). The JECF looks up a current user 
interface associated with the operation and displays the user interface. The JECF adds 
operation to the user interface and waits for operation completion by the user. A user 
performs an operation, interacting with the user interface. When the operation is 
complete a string response is returned which is returned to the caller of the operation. 
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The functionality of the JECF may be utilized in virtual wallet 120 with other 
software to perform the functions described in the preceding sections 

Although the invention has been described with reference to these preferred 
embodiments and features, other similar embodiments and features can achieve the 
same result, Variations and modifications of the present invention wil, be apparent 
to one skilled in the art and the present disclosure is intended to cover all such 
modifications and equivalents. 
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Claims 

1. A virtual wallet system comprising a locally residing wallet portion, an 
external server residing wallet portion and an interface between the locally residing 

5 wallet portion and the external server residing portion. 

2. The virtual wallet system of claim 1 wherein the wallet includes at 
least one of the following: payment mechanisms; identity authentication mechanisms; 
personal information; and electronic artifacts. 

10 

3. The virtual wallet system of claim 2 wherein the payment mechanisms 
comprise one or more of the following: bank account information; credit account 
information; electronic currency; electronic checks and debit cards, 

15 4. The virtual wallet system of claim 2 wherein the identity authentication 

mechanisms comprise personal identification information and authentication 
information. 

5 . The virtual wallet system of claim 2 wherein, personal information 
20 comprises one ox more of the following: name, home address, work address, home 
phone, work phone, emergency contact information, personal phone numbers and 
addresses, appointments and reminders, personal preferences and interests, and 
biometric information. 

25 6. The virtual wallet system of claim 5 wherein personal identification 

information comprises one or more of the following: name, home address, work 
address, home phone, work phone, emergency contact information, and biometric 
information. 

30 7. The virtual wallet system of claim 5 wherein authentication 

information comprises one or more of the following: certificates, access keys and 
biometric information. 
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8 . The virtual wallet system of claim 2 wherein the electronic artifacts 
comprise one or more of the following; loyalty credits, coupons, pictures, tokens and 
tickets- 

9. A system for electronic commerce utilizing a virtual wallet of claim 1. 

10. The virtual wallet system of claim 1 wherein the interface permits 
transfer of data between the locally residing wallet portion and the external server 
residing portion. 

U, Tho virtual wallet system of claim 1 wherein the external server 
residing portion includes a minor of information contained on the locally residing 
wallet portion- 

12. The virtual wallet system of claim 1 wherein the external server 
residing portion includes applications and the locally reading wallet portion 
comprises connectors to the applications that reside on the external server residing 
portion. 

13. The virtual wallet system of claim 12 wherein the connectors comprise 
proxies for keys that identify an authorized user of the application. 
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A pass-through interface allows the user to 
select an item from applications on the 
network as if they were on the smart card. 
Since they are actually on the server, the Wallet Serve- 
number of applicati ons are not constrained by 
the size of a smart card; and the card is 
easily replaced in the event of a mishap. 
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